mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-04-26 00:50:10 -05:00
Code Issues Packages Projects Releases Wiki Activity
25,609 Commits 33 Branches 304 Tags
140e953d3fd1a2dffa98c60f57c030bce8d1434e
Commit Graph

802 Commits

Author SHA1 Message Date
rmartinc e30230488e Convert chapter mod_auth_mellon from securing apps into guides 
Closes #31569

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-24 21:16:49 +02:00
Pedro Igor f4b1a5ca88 Updating docs 
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-24 15:12:16 -03:00
Maciej Mierzwa 97e89e2071 feature: password age in days policy 
Closes #30210

Signed-off-by: Maciej Mierzwa <dev.maciej.mierzwa@gmail.com>
 2024-07-24 15:12:16 -03:00
Steven Hawkins 3139b82e3c operator bootstrap admin handling (#30711) 
* enhance: add bootstrap admin handling to the operator

closes: #30004

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update docs/guides/operator/advanced-configuration.adoc

Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>

* enhance: add bootstrap admin handling to the operator

closes: #30004

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
 2024-07-24 17:35:13 +02:00
rmartinc 9f2eddead8 Re-add notes about not supporting DPoP and holder-of-key in the remaining adapters 
Closes #30874

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-24 11:55:47 +02:00
rmartinc ccab30d5f2 Move saml documentation to guides 
Closes #31330

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-24 11:50:24 +02:00
Thomas Darimont dbd4079f92 Allow users to customize the footer of a login theme (#31391) 
Closes  #31390

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
 2024-07-23 09:29:38 +02:00
Martin Kanis fdc35919a0 Wrong command in exposing metrics from caches section 
Closes #31413

Signed-off-by: Martin Kanis <mkanis@redhat.com>
 2024-07-19 09:19:31 +02:00
Steven Hawkins 14a9927e29 fix: scaling and tuning getting started guide 
closes: #29388

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: andymunro <48995441+andymunro@users.noreply.github.com>
 2024-07-18 13:31:37 +00:00
Hynek Mlnarik a7374f92be Update login theme to login v2 
Fixes: #29009

Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
 2024-07-18 14:33:22 +02:00
rmartinc 764ef4831a Release notes and some notes for JavaKeystoreProvider changes 
Closes #31226

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-17 10:44:45 +02:00
Stian Thorgersen 865c2dabea Update themes.adoc (#31362) 
Closes #30816

Signed-off-by: Stian Thorgersen <stianst@gmail.com>
 2024-07-17 10:32:45 +02:00
Pedro Ruivo 9b39498085 Add default stack in cache-ispn.xml 
A bug in Infinispan prevents the metrics to be registered if the "stack"
is not specified.
Change the default configuration shipped with Keycloak to use the UDP
stack as default.
UDP is the default in previous Keycloak versions.

Fixes #31218

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-16 12:05:38 +02:00
Thomas Darimont e79d10e71e Add missing user event translations to admin-ui 
Fixes #27677

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-12 10:04:57 +02:00
Steven Hawkins 4970a9b729 fix: deprecate KEYCLOAK_ADMIN and KEYCLOAK_ADMIN_PASSWORD 
closes: #30658

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Jon Koops <jonkoops@gmail.com>
 2024-07-11 18:07:57 +02:00
rmartinc e80c3fee9b Change link to https://github.com/eclipse/microprofile/wiki/JWT_Auth 
Closes #31219

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-11 18:03:57 +02:00
Steve Hawkins 9247029ca3 fix: removes the operator's usage of the v1 proxy option 
closes: #30945

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-07-11 14:21:50 +02:00
rmartinc 096e335a92 Support for vault and AES and HMAC algorithms to JavaKeystoreKeyProvider 
Closes #30880
Closes #29755

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-11 12:40:45 +02:00
Lucy Linder 0f7c2364f0 Update links in ReCAPTCHA doc 
Google links changed and are now causing redirect issues reports.

Closes: #31187

Signed-off-by: Lucy Linder <lucy.derlin@gmail.com>
 2024-07-11 00:27:09 +02:00
Martin Kanis 922eaa9fc8 Disable username prohibited chars validator when email as username is… (#31140) 
* Disable username prohibited chars validator when email as the username is set

Closes #25339

Signed-off-by: Martin Kanis <mkanis@redhat.com>
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-10 09:46:24 -03:00
rmartinc ce195b81f8 Improve consent deletion when a realm is removed 
Closes #30992

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-07-10 09:44:42 +02:00
Gilvan Filho a918eb1e30 Fix user storage spi jpa quickstart description 
Closes #30941

Signed-off-by: Gilvan Filho <gfilho@redhat.com>
 2024-07-08 14:44:41 +02:00
Pedro Igor 1a8075d62a Update migration and upgrade guides about GroupRemovedEvent no longer fired when removing a realm 
Closes #30919

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-05 10:14:30 +02:00
Pedro Igor b745ac8259 Documenting LDAP connection pooling 
Closes #30995

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-07-04 13:21:47 +02:00
Diego Garcia Lozano 2ff0d4e4f8 Update caching docs to match breaking changes in v25 
In the latest Keycloak version (v25.0.1) the cache options are not build options anymore. They now have to be provided during runtime.

Closes #31050

Signed-off-by: Diego Garcia Lozano <diegogarcialozano95@gmail.com>
 2024-07-04 11:54:32 +02:00
Steven Hawkins a7ae90cbb6 fix: adds affinity and other scheduling to the operator (#29977) 
closes: #29258

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-07-03 20:07:03 +02:00
Pedro Aguiar 2316b8d82a update: fix typo in hostname.adoc (#31007) 
- `proxy_name` becomes `project_name`.

Signed-off-by: Pedro Aguiar <contact@codespearhead.com>
 2024-07-02 16:50:38 +00:00
Thomas Darimont f34bb21af6 Fix deprecations in common module 
- Use charset in `Encode` class
- Replace reflective call to protected `Liquibase#resetServices()` with call to exposed public method on a custom subclass `KeycloakLiquibase`
- Remove usage of deprecated AccessController class in Reflections
- Deprecated SetAccessibleProvilegedAction and UnsetAccessibleProvilegedAction

Fixes #22209

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-07-02 16:02:35 +00:00
Peter Zaoral add45a25a8 Add default CPU limit/request for the operator (#30601) 
Closes: #27432

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
 2024-07-01 15:12:43 +02:00
Christoph Schulz 657aff787f Add missing comma to (#30914) 
Signed-off-by: Christoph Schulz <mail@ciis0.de>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
 2024-06-28 13:13:13 +00:00
Václav Muzikář bce7a29035 Document how Admin REST API endpoints work with Hostname config 
Closes #30537

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2024-06-28 09:31:41 +02:00
Stan Silvert a1445cd93f Minor doc fix. (#30899) 
Signed-off-by: Stan Silvert <ssilvert@redhat.com>
 2024-06-27 16:18:32 -04:00
andymunro 30264c7dd4 Remove inclusive language foreword 
Closes #30856

Signed-off-by: AndyMunro <amunro@redhat.com>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
 2024-06-27 15:22:03 +02:00
MWarnecke c5fc9f2962 Use provided scope for maven-plugin dependencies 
* use provided scope for maven dependencies

As the maven-plugin-plugin suggests, dependencies to the maven runtime
should be in provided scope.

This gets rid of the according warning which was written during build.

Before Maven 3.9, plexus-utils was injected in the classpath at runtime.
As of Maven 3.9 this is not the case anymore which broke the plugin due
to a usage of said dependency. The only usage is replaced by a visitor
to copy files.

Closes #30542

Signed-off-by: Michael Warnecke <WarneckeMichael@web.de>

* Guides need to see maven's Log class

Signed-off-by: Michael Warnecke <WarneckeMichael@web.de>

---------

Signed-off-by: Michael Warnecke <WarneckeMichael@web.de>
 2024-06-27 09:50:19 +02:00
Martin Bartoš 0a888512a8 New operator failing on health checks (#30709) 
Closes #30355

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
 2024-06-26 15:46:48 +00:00
Martin Bartoš 30fdba00b5 Describe mTLS overrides for the management interface (#30735) 
Closes #30094

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
 2024-06-26 12:02:36 +02:00
Douglas Palmer 5af3001122 Check if OSGI metadata can be removed entirely 
Closes #29104

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2024-06-25 14:12:33 +02:00
Steven Hawkins 1983bfc9b1 docs: remove reference to features-disabled=default (#30612) 
closes: #29761

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
 2024-06-25 11:08:45 +02:00
rmartinc e9c9efc3f4 Upgrade bc-fips to 1.0.2.5 
Closes #26568
Closes #27884

Signed-off-by: rmartinc <rmartinc@redhat.com>
 2024-06-25 11:07:27 +02:00
Andre F de M 0f061a75e2 Issue: 26568 - bcfips version bump and fixes 
* bump BCFIPS to 1.0.2.5
               * fix bc-fips related test error
               * remove unused imports

               Closes: #26568

Signed-off-by: Andre F de M <trixpan@users.noreply.github.com>
 2024-06-25 11:07:27 +02:00
Nikolai Prokoschenko 1019af91c9 Fix typo in importExport.adoc (#30731) 
Signed-off-by: Nikolai Prokoschenko <nikolai.prokoschenko@kurzdigital.com>
 2024-06-25 08:07:05 +00:00
Douglas Palmer 54f4ab50f0 Broken external links 
Closes #30717

Signed-off-by: Douglas Palmer <dpalmer@redhat.com>
 2024-06-25 09:55:50 +02:00
julien-sarik dd7e82cd16 Fix usage of management port in the documentation (#30653) 
Health and metrics endpoints are documented as being served on port 8443 instead of 9000 in [the guide about Running Keycloak in a container](https://www.keycloak.org/server/containers#_starting_the_optimized_keycloak_container_image).

Closes #30652

Signed-off-by: julien <julien.sarik@gmail.com>
 2024-06-21 12:59:13 +00:00
Jon Koops df18629ffe Use a default Java version from root POM (#29927) 
Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-06-21 14:19:31 +02:00
Pedro Igor a0ad680346 Adding an alias to organization and exposing them to templates 
Closes #30312
Closes #30313

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-06-20 14:36:14 -03:00
Jon Koops 77fb3c4dd4 Use correct host URL for Admin Console requests (#30535) 
Closes #30432

Signed-off-by: Jon Koops <jonkoops@gmail.com>
 2024-06-19 15:21:53 +02:00
Pedro Ruivo c48e7bc24c Update to Infinispan 15.0.5.Final 
Closes #30557

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-06-19 11:50:24 +02:00
CARBONNEAUX Mathieu acf79b81c7 add RS256 algorithm to webauthn default policy (#30528) 
closes #28020 

Signed-off-by: Mathieu CARBONNEAUX <mathieu.carbonneaux@ch2o.info>
 2024-06-19 10:16:46 +02:00
Pedro Ruivo 5c0dddd837 Batch cluster events 
Sending multiple events in a single network request should minimize
latency and traffic.

Closes #30445

Signed-off-by: Pedro Ruivo <pruivo@redhat.com>
 2024-06-14 21:14:22 +02:00
Thibault Morin f6fa869b12 feat(SAML): add Artifact Binding on brokering scenarios when Keycloak is SP (#29619) 
* feat: add Artifact Binding on brokering scenarios when Keycloak is SP

Signed-off-by: tmorin <git@morin.io>

* Adding broker test and minor improvements

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>

* Fixing IdentityProviderTest

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>

* Renaming methods related to idp initiated flows

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>

* Fixing partial_import_test.spec.ts

Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>

---------

Signed-off-by: tmorin <git@morin.io>
Signed-off-by: Pedro Igor <pigor.craveiro@gmail.com>
Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
 2024-06-14 08:54:49 -03:00